MAL-2025-186852 Malicious code in eslint-tardigrade-gammarayburst-cryonics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f6ba0986e5b3fa90399d98555fce56050736ff52b31ceb2a66250e086fda217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190243 Malicious code in water-omega-compile-pipe-book (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c384897424d689290428902abecc2d8b7ec9bf3b44809f6125a0e31960c0223 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185630 Malicious code in async-registry-build-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b787b4cc82b7e9203080fa1cbb0dfde6a06a8c55417491aea92d72ed9a1f97d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187537 Malicious code in iota-geomorphology-rate-limiter-jasmine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 346e3847a3afae7b06fc9b4ad231de81c16e9d099a34651a5080fcd332454451 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190005 Malicious code in troposphere-elektra-supernova-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fafea2be1de7264163adeab8c2f4d88c984fdf472b377385bfec282df6b6a8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189540 Malicious code in slidev-scorpius-dotenv-aldebaran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35a54165db7da361334553c966eb5152e75555cd344fc44c637a633e938c7a11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189671 Malicious code in stop-chalk-build-less-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12304bce2d2adca285ac9ea833f6164df53f2794ac72a2e3661ee2b7f9968c4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188162 Malicious code in mysql-joviology-eslint-config-exoplanetology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 643bafbeb2dfc79283955d0c21bab2fd71901ce97f885b0030161154a433103a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188872 Malicious code in prompts-meissa-lacerta-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c10fd22419fb3d6e178c081f9d5255950af4238612ae142fa4a8d8b98ccd3ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188971 Malicious code in pulsar-interferometry-singularitarianism-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fad5a7f738c28a6e7ad5fe6e30c4879f10f4e777f865b13d708e690aa51800e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187094 Malicious code in gamma-stack-fire-async-abstract (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f1d97ad1a3cc0bd0dbedc611e5d76c0118414285c11bb85bb8c1144c145a667 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188492 Malicious code in package-nconf-antares-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf4caf3fa0344f2aee63fcd6310c26ee30f4d3e8d913a64bafc82bd31020a0ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187854 Malicious code in long-alpha-code-sun-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75cb602c6b94108ac0d207627555585711911a931cde0410f20974c8c45d67f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185602 Malicious code in astrometry-halley-auriga-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0987c30c3ce3db7f1c02cef5135ac147f992aaf87e66da991eb1ef87264a23f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190000 Malicious code in triton-proxima-impulse-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb012bc8032df9bf8cc5ab1b784df443d93d149bc076b6fdfb47b22dfbaf7b9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190118 Malicious code in ursa-testcafe-innercore-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dfce035eabf7825c0a7f26269b5bf0b12829681278f18b5eadef5359a7fca39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189822 Malicious code in tau-upsilon-function-alpha-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a90193271ebae98b6977b41632875a580c5ca8ef7aaba725f10408347fa64fb8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189235 Malicious code in rigel-helios-phoebe-fermion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24a0da6053cdb72f85fde927e0bdced3be241789ece6e8366cc94bc24e6a0aa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190167 Malicious code in virtualreality-bootstrap-geochronology-nuxtjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be79ba73e6ad03713c9493b36f0c5582b051a8d5650e4af98e8b737179a3b14e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189314 Malicious code in sagitta-javascript-process-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 192f71261f706f28676541bb8ebc25a651c6bcd39f95de4ed5e6634af129bbed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...